Technical Cybersecurity Lead

Description

We are seeking a Technical Cybersecurity Team Lead to oversee a small, high-performing security team while remaining hands-on with critical cybersecurity technologies. This leader will drive technical initiatives — from red/blue team exercises and scripting automation to threat hunting and compliance oversight — while mentoring team members and engaging with business stakeholders. The ideal candidate has 10+ years of technical cybersecurity experience, proven leadership in SOC/MSSP environments, and the ability to balance strategy with execution.

• Lead, mentor, and develop a small team of cybersecurity analysts and engineers.
• Oversee daily SOC/MDR workflows, serving as an escalation point for incidents.
• Manage and optimize use of Sentinel One MDR, Palo Alto Firewalls, Microsoft 365 Security, and DLP solutions.
• Direct red and blue team operations, including penetration testing, adversary simulation, and threat modeling.
• Develop and deploy automation scripts (Python, Power Shell, Bash) to improve detection and response efficiency.
• Proactively hunt for threats, lead investigations, conduct forensics, and deliver technical and executive-level reports.
• Manage third-party security vendors, negotiate contracts, and oversee SLAs.
• Ensure compliance with FTC, GLBA, PCI-DSS and lead audits, risk assessments, and reporting to executives.

• 10+ years of technical, hands-on cybersecurity experience, including SOC or MSSP environments.
• 3+ years of leadership experience managing small security teams.
• Expertise with Sentinel One MDR, Palo Alto Firewalls, Microsoft 365 Security, and DLP solutions.
• Experience with vulnerability management, incident response, red/blue team operations, automation, and vendor management.
• Strong knowledge of security frameworks such as NIST CSF, MITRE ATT&CK, and CIS Controls.
• Excellent communication skills with the ability to engage both technical and executive stakeholders.
• Preferred:
  Certifications such as CISSP, CISM, GIAC, CCSP, or Palo Alto certifications.
• Preferred:
  Experience in regulated industries (finance, healthcare, government).
• Preferred:
  Background in digital forensics, threat hunting, and adversary simulation.
• Preferred:
  Familiarity with cloud security tools (AWS, Azure).

Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting.

The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan.